CVE-2009-2869
published 2009-09-28CVE-2009-2869: Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to cause a denial of…
high7.8CVSS 3.1
AVNACLAuNCNINAC
Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to cause a denial of service (device reload) via a crafted NTPv4 packet, aka Bug IDs CSCsu24505 and CSCsv75948.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
Cisco
Cisco IOS Software Network Time Protocol Packet Vulnerability
vendor_cisco·2009-09-23·CVSS 7.8
CVE-2009-2869 [HIGH] CWE-399 Cisco IOS Software Network Time Protocol Packet Vulnerability
Cisco IOS Software Network Time Protocol Packet Vulnerability
Cisco IOS�� Software with support for Network
Time Protocol (NTP) version (v4) contains a vulnerability processing specific
NTP packets that will result in a reload of the device. This results in a
remote denial of service (DoS) condition on the affected device.
Cisco has released software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090923-ntp.
Note: The September 23, 2009, Cisco IOS Security Advisory bundled
publication includes eleven Security Advisories. Ten of the advisories address
vulnerabilities in Cisco IOS Software, and one advisory addresses a
v
Cisco
Cisco IOS Software Network Time Protocol Packet Vulnerability
vendor_cisco
CVE-2009-2869 Cisco IOS Software Network Time Protocol Packet Vulnerability
CVE-2009-2869: Cisco IOS Software Network Time Protocol Packet Vulnerability
Cisco IOS ?? Software with support for Network Time Protocol (NTP) version (v4) contains a vulnerability processing specific NTP packets that will result in a reload of the device. This results in a remote denial of service (DoS) condition on the affected device. Cisco has released software updates that address this vulnerability.
CWE: CWE-399, CWE-399
Bug IDs: CSCsu24505, CSCsv75948, CSCsu24505, CSCsv75948, CSCsw79186
GHSA
GHSA-38m7-p48j-3jpx: Unspecified vulnerability in Cisco IOS 12
ghsa_unreviewed·2022-05-02
CVE-2009-2869 [HIGH] GHSA-38m7-p48j-3jpx: Unspecified vulnerability in Cisco IOS 12
Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to cause a denial of service (device reload) via a crafted NTPv4 packet, aka Bug IDs CSCsu24505 and CSCsv75948.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/58342http://tools.cisco.com/security/center/viewAlert.x?alertId=18889http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8131.shtmlhttp://www.securitytracker.com/id?1022930http://www.vupen.com/english/advisories/2009/2759https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6712http://osvdb.org/58342http://tools.cisco.com/security/center/viewAlert.x?alertId=18889http://www.cisco.com/en/US/products/products_security_advisory09186a0080af8131.shtmlhttp://www.securitytracker.com/id?1022930http://www.vupen.com/english/advisories/2009/2759https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6712
2009-09-28
Published